Palo Alto Networks to fix exploited GlobalProtect zero-day

April 15, 2024Source: The Register

Found this useful? Share it with your network

Palo Alto Networks issued a critical alert on Friday for a command-injection vulnerability in its PAN-OS software, affecting firewall and VPN products, with a CVSS severity score of 10/10, allowing unauthenticated attackers to execute remote code with root privileges. Updates are expected by Sunday, April 14. The vulnerability, designated CVE-2024-3400, affects certain configurations and is currently being exploited, as detected by Volexity, which observed the attacks aiming to take control of the equipment and penetrate victims' networks. Palo Alto Networks is actively working on a fix and has recommended temporary mitigations, emphasizing the importance of customer security and urging users to apply these measures promptly.

Read Full Article

Opens on The Register

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News